From: Secunia Security Advisories (sec-advsecunia.com)
Date: Sat Apr 10 2004 - 05:02:53 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Scorched 3D Chat Box Format String Vulnerability

SECUNIA ADVISORY ID:
SA11319

VERIFY ADVISORY:
http://secunia.com/advisories/11319/

CRITICAL:
Highly critical

IMPACT:
DoS, System access

WHERE:
From remote

SOFTWARE:
Scorched 3D 36.x

DESCRIPTION:
FieldySnuts has discovered a vulnerability in Scorched 3D, which
potentially can be exploited by malicious people to compromise a
vulnerable server.

The vulnerability is caused due to a format string error within a
routine for displaying text entered in a chat box. This can be
exploited by malicious users to crash the server and potentially
execute arbitrary code by including format specifiers in the text.

The vulnerability reportedly affects build 36.2 and prior.

SOLUTION:
The vulnerability has reportedly been fixed in build 37 and later.
http://scorched3d.sourceforge.net/downloads.php

Don't install games on production systems.

PROVIDED AND/OR DISCOVERED BY:
FieldySnuts

ORIGINAL ADVISORY:
http://bugs.gentoo.org/show_bug.cgi?id=39302

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]